[webteam] auth idea
Matthew Wild
mwild1 at gmail.com
Tue Jan 29 16:40:04 CST 2008
On Jan 29, 2008 10:06 PM, Peter Saint-Andre <stpeter at stpeter.im> wrote:
> A: Because it messes up the order in which people normally read text.
> Q: Why is top-posting such a bad thing?
> A: Top-posting.
> Q: What is the most annoying thing in e-mail?
>
:)
> That's basically what XEP-0070 defines. The problem is, there is a spam
> attack: I write a bot that inputs your JID repeatedly and you receive
> hundreds of verification requests in your Jabber client. Not good.
But you would be keeping track of JIDs<->secret URLs already
presumably, I can't see it would be hard to disallow more than one
request on the same JID (in X amount of time)?
This is how most websites currently work with email confirmations.
Some give a secondary URL, a kind of "I don't want you to bother me
again" one.
Matthew.
More information about the webteam
mailing list